Attorney Docket No. P17580-US1 
AMENDMENTS TO THE CLAIMS 

The listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims 

1 . (Currently Amended) A method of authenticating candidate members 
wishing to participate in an IP multicast via a communication network, where data sent 
as part of the multicast is to be secured using a key revocation based scheme requiring 
that each candidate member submit a public key to a group controller in order to 
become a oarticipatinq candidate member , the method comprising: 

at the group controller, verifying that the public key received from each candidate 
member wishing to participate is owned by that candidate member and that the public 
key [[it]] is associated with the IP address of that candidate member by inspecting an 
interfacelD part of the IP address. 

2. (Previously Presented) A method according to claim 1 , wherein said 
key revocation based scheme is a Logical Key Hierarchy based scheme. 

3. (Currently Amended) A method according to claim 1 ©f5, wherein 
each candidate member generates an interfacelD part of its ownlPv6 address by taking 
a cryptographic hash over [[its]] the candidate member's own public key and one or 
more other parameters, and [[a]] the candidate member sends a joining request to the 
group controller which contains: 

the member's IP address including the generated interface ID; 
the candidate member's [[its]] own public key; and 

a signature over the entire message generated using the member's private key. 

4. (Currently Amended) A method according to claim 3, wherein upon 
receipt of the message, the group controller: 
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a) uses the received public key to confirm that the signature is valid, thus proving 
that the candidate member does indeed own the public-private key pair to which the 
received public key belongs and 

b) applies the same cryptographic hash^ [[(]]as used by the candidate member^ 
[[)]] to the public key and the other parameter (s) and compares the result to the 
interfacelD part of the member's IP address, thus verifying that the source IP address is 
owned by the candidate. 

5. (Currently Amended) A method according to claim 2 or to c l aim 3 or 
4 wh e n append e d to c l a i m 2 , wherein, after the group controller has received the public 
key from a given candidate member and has verified that the public key is associated 
with the IP address of the sender, the group controller sends a unique Key Encryption 
Key to the member, encrypted with that member's public key, and the group controller 
also sends a Traffic Encryption Key and a LKH key set to the member, encrypted with 
the Key Encryption Key. 

6. (Currently Amended) A method according to claim 1 any on e of th e 
pr e ceding cla i ms , wherein said IP multicast comprises: 

a one-way multicast where a single node multicasts a stream of data to several 
other nodes; 

a group multicast where group members multicast data to all other members of 
the group; or 

a tele- conference or a videoconference or a multimedia conference. 

7. (Currently Amended) A method of authorising a user to participate in 
a secure IP multicast or broadcast awd in which security keys are distributed to group 
members using a key revocation based mechanism, the method comprising: 

delivering a certificate to the user, the certificate verifying that a public private key 
pair identified in the certificate can be validly used by the user to access said secure 
multicast/broadcast; 
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subsequently verifying at a control node that the certificate is owned by the user 
using a proof-of-possession procedure; and 

assuming that verification is obtained, using said public key to send a Key 
Encryption Key to the user. 

8. (Previously Presented) A method according to claim 7, wherein said 
key revocation based scheme is a Logical Key Hierarchy based scheme. 

9. (Previously Presented) A method according to claim 8, wherein said 
step of verifying at a control node that the certificate is owned by the user, is carried out 
after the control node receives a request from the user to join said secure multicast or 
broadcast. 

1 0. (Currently Amended) A method according to claim 7, 8, or 9, wherein 
said proof-of-possession procedure involves the control node sending a random number 
(nonc e ) to the user in plain text, and the user sending oonds a response to the control 
node containing a signature generated by applying the private key to the random 
number, and using, wherein the control node is in possession of the user's certificate 
and can check whether or not the message is correctly signed with the user's private 
key. 

1 1 . (Currently Amended) A method according to claim 7 any on e of 
claims 7 to 10, wherein the user to be authorised has a subscription to a first, home 
communication network and wishes to participate in a multicast or broadcast service via 
a second, foreign network in which the user is roaming, the method comprising: 

the visited network contacting the user's home network, upon receipt of an initial 
registration request from said user, to authorise the user; 

following authorisation by the home network, generating a certificate relating to 
said service and comprising generating a public-private key pair, either at the user 
equipment or within one of the networks, and signing the certificate; and 

sending the certificate to the user. 
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1 2. (Currently Amended) A method according to claim 1 1 , wherein an 
Authentication and Key Agreement (AKA) AKA procedure is used to authorise the user. 

1 3. (Currently amended) ^ A group controller compr i s i ng memory and 
proc e ss i ng m e ans for i mpl e ment i ng th e m e thod of any on e of th e pr ee ding claims for 
authenticating candidate members wishing to participate in an IP multicast via a 
communication network, where data sent as part of the multicast is to be secured using 
a key revocation based scheme requiring that each candidate member submit a public 
key to a group controller in order to become a participating candidate member, the 
group controller comprising: 

means for verifying that the public key received from each candidate member 
wishing to participate is owned by that candidate member and that the public key is 
associated with the IP address of that candidate member by inspecting an interfacelD 
part of the IP address. 

14. (Canceled) 

15. (New) A group controller according to claim 13, wherein said key 
revocation based scheme is a Logical Key Hierarchy based scheme. 

16. (New) A group controller according to claim 13, further comprising: 
means for receiving and storing a generated interfacelD part of a candidate 

member's ownlPv6 address and for receiving a joining request from the candidate 
member to the group controller which contains: 

the member's IP address including the generated interface ID; 

the candidate member's own public key; and 

a signature over the entire message generated using the member's private key. 

17. (New) A group controller according to claim 16, further comprising means 
for, upon receipt of the message: 
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using the received public key to confirm that the signature is valid, thus proving 
that the candidate member does indeed own the public-private key pair to which the 
received public key belongs; and 

applying the same cryptographic hash, used by the candidate member, to the 
public key and other parameters and compare the result to the interfacelD part of the 
candidate member's IP address, thus verifying that the source IP address is owned by 
the candidate member. 

18. (New) A group controller according to claim 17, wherein, after the group 
controller has received the public key from a given candidate member and has verified 
that the public key is associated with the IP address of the sender, the group controller 
having: 

means for sending a unique Key Encryption Key to the candidate member, 
encrypted with that candidate member's public key; and 

means for sending a Traffic Encryption Key and a LKH key set to the candidate 
member, encrypted with the Key Encryption Key. 

19. (New) A group controller according to claim 13, wherein said IP multicast 
comprises: 

means for a single node multicasting a stream of data to several other nodes; 
means for a group multicast where group members multicast data to all other 
members of the group; or 

means for a tele-conference or a videoconference or a multimedia conference. 

20. (New) A group controller for authorising a user to participate in a secure IP 
multicast or broadcast in which security keys are distributed to group members using a 
key revocation based mechanism, the group controller comprising: 

means for delivering a certificate to the user, the certificate verifying that a public 
private key pair identified in the certificate can be validly used by the user to access said 
secure multicast/broadcast; 
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means for subsequently verifying at a control node that the certificate is owned 
by the user using a proof-of-possession procedure; and 

means for assuming that verification is obtained, using said public key to send a 
Key Encryption Key to the user. 

21 . (New) A group controller according to claim 20, wherein said key 
revocation based scheme is a Logical Key Hierarchy based scheme. 

22. (New) A group controller according to claim 21 . wherein means for 
verifying at a control node that the certificate is owned by the user, also verifies the 
certificate after the control node receives a request from the user to join said secure 
multicast or broadcast. 

23. (New) A group controller according to claim 20, wherein the control node 
further comprises: 

means for sending a random number to the user in plain text; and 
means for receiving from the user a response containing a signature generated 
by applying the private key to the random number, wherein the control node is in 
possession of the user's certificate and can check whether or not the message is 
correctly signed with the user's private key. 

24. (New) A group controller according to claim 20, wherein the user to be 
authorised has a subscription to a first, home communication network and wishes to 
participate in a multicast or broadcast service via a second, foreign network in which the 
user is roaming, the group controller including means for: 

receiving the visited network contacting the user's home network, upon receipt of 
an initial registration request from said user, to authorise the user; 

means for generating a certificate relating to said service following authorisation 
by the home network; 

means for generating a public-private key pair and signing the certificate; and 

means for sending the certificate to the user. 
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25. (New) A group controller according to claim 20, wherein an Authentication 
and Key Agreement (AKA) procedure is used to authorise the user. 
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